×
You will be redirected back to your article in seconds

Spoiler Alert: Hackers Are Gunning for Hollywood (Guest Column)

The 2014 hack at Sony Pictures Entertainment was a watershed moment for the entertainment industry. This week, yet another targeted attack — this one against HBO — reminds us that cybercriminals continue to target Hollywood.

It certainly won’t be the last attack. The challenge: The entertainment industry remains in a digital growth spurt and keeping up and protecting its sprawling supply chain has proven difficult.

In 2016, the media and entertainment sector was among the top five most-breached industries. There were 37 publicly reported breaches compromising more than 42 million records last year among media and entertainment companies, according to the IBM X-Force Threat Intelligence Index.

Most of that represents the theft of personal information like Social Security numbers and credit card numbers, as well as emails and sensitive company information — all of which are of great value to criminals. But it doesn’t take into account hackers’ latest and often more attractive target: content. Not only are entertainment companies tasked with protecting an enterprise with sensitive data of all types, they must secure the high-profile content that’s the lifeblood of the industry.

Everyone Wants Their 15 Minutes of Fame

The blockbuster success of the most popular movies, TV shows and digital content are making the industry one of the hottest targets for hackers looking to make a name for themselves and for sophisticated cybercriminals to make a buck. Spoilers about the buzziest new show or film can be used for extortion, profit or just to give an aspiring hacker credibility on the dark web.

From pre-production casting calls and budget discussions to filming during production, all the way through post-production and finally distribution — we’re looking at a lot of hands and eyes on a single project. Take “Game of Thrones”: More than 3,500 people are credited with working on it. While every person has a unique contribution to the content-generation lifecycle, the scope creates heightened risk and additional exposure to cybercriminals.

Securing a team of thousands — particularly when many are third-party partners — is a lofty undertaking. But there are key steps that media and entertainment managers can take to protect their content and information.

1. Digital Security Background Checks: Before working with third-party vendors, understand how they approach security, assess their software, network, applications, cloud environments, and personnel to ensure it meets your standards. Insist they regularly train employees on ways to identify suspicious activity and phishing emails.

2. Stop, Collaborate and Listen: Digital rights and content-management solutions are a great way to share and control how entertainment companies can collaborate on content without putting it at risk of being compromised. Whether that’s personal information, a script or a full feature film, there are tools and technologies designed to enable secure and efficient collaboration. The key is monitoring and managing who has access – and for how long.

3. Be Aware, Be Very Aware: Security awareness training is key to creating a culture of security. Conduct regular training and implement employee-awareness programs to minimize the human factor – often the entry point for hackers to gain access to company networks. Consider rehearsing a breach with employees and third parties from across an organization to experience simulated cybersecurity tactics in real-life scenarios.

4. Being Prepared Isn’t Just for Boy Scouts: With increasingly sophisticated threats and the cost of data breaches soaring, organizations need to focus on creating swift and efficient responses before incidents occur. Assemble the right team and engage in proactive efforts to improve your security posture. Identify the critical data within your organization. Know where it lives, how it lives, and ensure it is protected.

If content is king, then media and entertainment companies need to take every possible measure to protect its royals. By adopting a holistic, risk-based approach to secure and enable the business — one that includes partners — companies can cultivate a culture of security, so they’re prepared for an attack before cybercriminals come looking for holes to burrow through.

Ahmed Saleh is the global lead, incident response and proactive services, for IBM X-Force IRIS, which provides cybersecurity services, incident management, security intelligence, and remediation. Prior to joining IBM, he spent five years at Disney-ABC Television Group and the Walt Disney Co. working in information security and content technology.

Popular on Variety

More Digital

  • Google headquartersGoogle headquarters, Dublin, Ireland -

    Google Won't Allow Political Campaigns to Target Voters by Affiliation Anymore

    Google is tweaking its policy for political ads, which includes doing away with microtargeting by political affiliation or voting records. The search giant also announced Wednesday that it would clarify its advertising policy to make sure that political advertisers can’t make grossly misleading statements. “We’re limiting election ads audience targeting to the following general categories: [...]

  • Sonos Q4 Results: Revenue, Losses Grow,

    Sonos Acquires Voice Assistant Startup Snips for $37.5 Million

    Smart speaker maker Sonos is getting ready to take a more active role in voice control: Sonos announced the acquisition of Paris- and Tokyo-based voice assistant startup Snips Wednesday. Snips had been developing a platform to launch dedicated voice assistants for smart speakers and other devices. Sonos spent $37.5 million in cash on the startup, [...]

  • Ramin Arani - Vice Media

    Vice Hires Fidelity Veteran Ramin Arani as CFO (EXCLUSIVE)

    Vice Media Group appointed Ramin Arani, a 26-year veteran of Fidelity Investments and an early adviser to Vice, as its new chief financial officer. Arani, reporting to CEO Nancy Dubuc, will lead all financial and accounting functions for Vice Media Group. Following Vice Media Group’s recent acquisition of Refinery29, Arani will also work to unify [...]

  • Jim Cornette

    Jim Cornette Resigns From National Wrestling Alliance After 'Offensive' On-Air Statement

    Professional wrestling mainstay Jim Cornette has resigned his position with the National Wrestling Alliance. “Effective immediately: Jim Cornette has resigned from the National Wrestling Alliance,” the company said in a statement released Wednesday. “As an announcer on the November 19th edition of ‘NWA Power,’ Jim made remarks during a singles match between Nick Aldis and [...]

  • Sarah Silverman

    As TV Consumption Shifts, Streamers Struggle With How to Apply Programming Standards

    When she launched her ultimately short-lived Hulu talk show  “I Love You, America” in 2017, Sarah Silverman wanted to make a point. This wasn’t a traditional broadcast or cable talk show with content restrictions or language limits — and so she experimented with that freedom on her very first episode. “Because we can — we’re [...]

  • Chelsea Ursin, Host of Dear Young

    'Disgraceland' Host Expands iHeartMedia Partnership With Slate of New Music Podcasts

    Jake Brennan, the creator and host of popular podcast “Disgraceland,” and his business partner Brady Sadler have launched Double Elvis Productions, a new audio-driven media company that will create original entertainment properties. Its initial slate of projects include four music-focused podcasts in partnership with iHeartMedia and as part of iHeartRadio Original Podcasts. The first on deck [...]

  • Disney-Plus-mobile-app

    Disney Responds to Disney Plus Hacked Accounts: 'No Evidence of a Security Breach'

    Thousands of Disney Plus accounts have reportedly been hacked and stolen — and offered for sale on underground cybercrime forums. Disney has now responded, saying only a “small percentage” of the service’s 10 million-plus users have seen their usernames and passwords compromised and that Disney Plus systems were not breached by hackers. “We have found [...]

More From Our Brands

Access exclusive content